Описание
Stored XSS in Compare Mode
A malicious content author could add a Javascript payload to a page's meta description and get it executed in the versioned history compare view.
This vulnerability requires access to the CMS to be deployed. The attacker must then convince a privileged user to access the version history for that page.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2022-38145
- https://forum.silverstripe.org/c/releases
- https://github.com/FriendsOfPHP/security-advisories/blob/master/silverstripe/versioned-admin/CVE-2022-38145.yaml
- https://www.silverstripe.org/blog/tag/release
- https://www.silverstripe.org/download/security-releases
- https://www.silverstripe.org/download/security-releases/cve-2022-38145
Пакеты
Наименование
silverstripe/versioned-admin
composer
Затронутые версииВерсия исправления
>= 1.0.0, < 1.11.1
1.11.1
Связанные уязвимости
CVSS3: 5.4
nvd
около 3 лет назад
Silverstripe silverstripe/framework through 4.11 allows XSS (issue 1 of 3) via remote attackers adding a Javascript payload to a page's meta description and get it executed in the versioned history compare view.